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Description 

The object of the invention is a method for utilizing 
card operated mobile stations, especially utilizing the 
service card of the GSM-network SIM-card containing 5 
the SIM-unit, favorably in different electronic service 
systems demanding high data protection. 

In present card systems the telecommunication net- 
works are utilized either in on-line or off-line communi- 
cation of transactions. Considerable problems are the 10 
development and maintenance costs of the card sys- 
tems and the telecommunication fixed costs as well as 
the variable costs of the communication for the service 
providers, e.g. shops and banks, etc. In the present card - 
systems the telecommunication traffic and subscriber '5 
fees are paid by the service providers (the shop, restau- 
rant, taxi, hotel, etc.), because the division of the tele- 
communication costs otherwise would demand the con- 
struction of expensive or for the use of the customers 
clumsy solutions. 20 

A vital problem is the prevention of unlawful and 
criminal use of electronic service systems. Such situa- 
" tions occur when the card falls into wrong hands or when 
the card is used for unauthorized services (the card 
lacks cover or the card limit has been overdrawn). A con- 2s 
stderable challenge comes from preventing the forgery 
of service cards and electronic service sessions. The 
problem is e.g. forgery of the A-number identity in the 
public network service applications, where the A- 
number is used to check the access rights to the service, 30 
by which a forged A-number identity enables the crimi- 
nal use of the service in question. 

A considerable problem arises also from the man- 
agement of the access rights of different services asso- 
ciated to the same service card. At present expensive 3S 
technical arrangements are provided separately for eve- 
ry service provider in order to administrate the different 
services associated to the card. 

Moreover, the problem of the present card systems 
is the transfer of the transaction data in connection with <o 
the card transaction to the different parties, e.g. in a 
trade situation the transfer of the purchase and the card 
payment to the central system of the shop from a single 
site, to the payer's bank, the payee's bank, etc. Different 
banks and credit companies have their own security 45 
systems. 

The existing telephone banks with different num- 
bers provide voice-frequency telephones for the pay- 
ment of bills and statement of account inquiries. When 
e.g. a telebank is called, the computer identifying the so 
DTMF-voice frequency signals available through the tel- 
ephone network i.e. the central voice applications plat- 
form (the CVAP) answers and the caller talks with the 
CVAP by pushing certain keys suggested by a prede- 
termined program. ss 

By linking a card reader system to the phone, the 
calls can be paid by credit card. The U.S. patent publi- 
cation 5 1 44 649 describes the method of using the radio 
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telephone with a credit card. The phone can be used 
only by first presenting the credit card. The credit card 
data is read from the credit card and the local validity of 
the credit card is established by processing the credit 
card data. If the validity is approved, the phone can be 
used. When the client uses the phone to place or receive 
a call, the time for using the phone is recorded. The va- 
lidity can be checked during the call, and if the call 
charge exceeds the credit limit, the method can cut off 
the call. 

The published EP application 409 417 also de- 
scribes the charging of calls when using a certain serv- 
ice data terminal having a credit card reader. In the credit 
card phone method, a local database, a storage and a 
programming intelligence have been connected to the 
telephone to enable the processing of the calls, in which 
method the user enters the credit card number after hav- 
ing dialled the required number, the data is locally re- 
corded after having checked the authority of the card, 
and in affirmative case, immediately continues the call 
set-up. The line is supervised during the call. The card 
number, the dialled number, the date, time and call time 
are locally recorded. The host computer is updated with 
this information. In the methods above only calls are 
charged by the credit cards. 

The publications EP-A-0481714 and WO-A- 
92/1 9078 relate to mobile telephone systems, especial- 
ly to mobile telephone system of the Global System for 
Mobile Communications i.e. GSM type standardised by 
the European telecommunications organisation called 
ETSI, where the user's identity is controlled by using a 
Personal Identity Number- i.e. PIN-code in connection 
with a smart- or intelligence-card type subscriber iden- 
tifier, such as the Subscriber Identity Module- i.e. SIM. 
The publication EP-A-0481714 relates to identifying 
subscribers in cellular telephone network. According to 
the publication the subscribers each have a token, such 
as a smartcard, by means of which they respectively 
identify themselves to the network. Each subscriber logs 
into the network by using his smartcard which inputs in 
the GSM network a unique identity known as the Mobile 
Subscriber Identity i.e. IMSI. The relationship between 
each IMSI and the corresponding subscriber's tele- 
phone number, known as the mobile subscriber interna- 
tional ISDN number i.e. MSI SDN, is random and stored 
in a Home Location Register i.e. the HLR. When a sub- 
scriber activates a mobile terminal using his smartcard, 
a Visitor Location Register i.e. the VLR at the relevant 
cell checks for presence of the I MSI and the correspond- 
ing MSISDN. If they are not present, it extracts them 
from the HLR. When a replacement smartcard is issued 
to a subscriber, the new IMSI is stored in the HLR in 
association with the IMSI of the previous smartcard. 
When the replacement smartcard is first used, the rele- 
vant VLR will note its absence and follow the same rou- 
tine as specified above by accessing the HLR. This will 
also activate the HLR to note first use of the replacement 
smartcard, cancel all reference to the IMSI of the previ- 
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ous smartcard, and inform the administration centre of 
the network. Advantage is that the network can recog- 
nise use of replacement smartcard, allowing its imme- 
diate use. The publication WO-A-92/1 9078 relates also 
especially to a mobile telephone system of the GSM s 
type. According to the publication a user's identifier 
means, such as the Subscriber Identity Module i.e. SIM 
of smartcard type, is allocated at least two identities 
known for the GSM type mobile telephone system as 
the International Mobile Subscriber Identity i.e. IMS], 10 
which are selectively useable such that the user acti- 
vates the desired lMSI when using a subscriber unit i.e. 
the mobile telecommunication terminal. More precisely 
the selection is disclosed to be provided such that the 
user inserts the SIM in the subscriber terminal in a first is 
position for activating one I MSI and the other IMSI is 
activated by inserting the SIM in the subscriber terminal 
. in a second position, whereby each identity is activated 
in connection with the input of a PIN -code. Advantage 
of the system is that the subscriber can allocate under so 
different IMSI:s different type of calls. 

The publication EP-A-022501 0 relates to the use of 
a mobile terminal such that a user can communicate in 
a secure way with a second party, such as a bank, in 
order to transact business, and for verifying the user a 25 
P!N-code is used. According to the publication a mobile 
terminal includes a device capable of reading data 
stored in a card type subscriber identifier such as a 
smart- or intelligence-card i.e. a SIM-card, a device for 
entry by the user of the SIM-card and a device for en- 30 
crypting the PIN-code prior to transmission to a check- 
ing entity. The PIN-code is encrypted by means of a se- 
lected key, that key being transmitted, after encryption 
using a public key corresp. to a secret key held by the 
checking entity, along with the encrypted PI N-code. The 35 
selected key may be a conventional key or a second 
secret key corresp. to a second public key. Multiple en- 
cryptions of the selected key may be performed. The 
terminal may also send a cryptographic check sum to 
the checking entity based either on the selected key or *o 
a secret key. 

The methods according to the subject invention pro- 
vide a preferable solution to the above mentioned prob- 
lems. The invention is characterized in what is present- 
ed in the claims. The solution according to the invention *s 
requires the initialization of the service card SIM-unit al- 
ways to require the use of the PIN-code, the connection 
of service number applications demanding high data se- 
curity from the GSM-network base station onwards 
through a private network all the way to the service pro- so 
vider (e.g. the bank credit system), searching with the 
A-number identity in the service application from the 
service database the database required by the user, to 
which the user has a predetermined right according to 
the database register, the description of the A-number ss 
identity related services to the service database, in 
which e.g. the customer's account number corresponds 
to the A- and B-number identities, and, furthermore, for 



the service management a service center for the control 
of the access rights of the A- and B-number related serv- 
ices and the re-connection of the services. 

Vital advantages of the subject invention are the 
possibilities to utilize the Pan-European GSM-system 
SIM-card or a card of a corresponding system in and for 
the different card issuers' applications, the possibilities 
to reduce and divide the service and equipment related 
telecommunication costs, due to i.a. joint usage of dif- 
ferent service providers. The invention solves the ques- 
tion of utilizing reliably the GSM-network user's local au- 
thentication all the way to the service provider. The in- 
vention also provides a solution to the charging of the 
card system telecommunication transaction costs direct 
from the user or from third party, which is a direct benefit 
for the service supplier of the use of the GSM-network 
and the SIM-unit in the card system. The invention has 
resolved the question of substantially obstructing unlaw- 
ful and criminal use of telecommunication services, and 
furthermore the safe processing of the A-number iden- 
tity in service applications. 

Payment transactions can be secured on-line, by 
which the use of stolen and forged cards can be pre- 
vented immediately when the computer in question has 
been informed. The transaction data is simultaneously 
transferred to the payer and the buyer. The same data 
terminal equipment can be used also as a mobile phone 
by installing a mobile communication network service 
card. Payments can thus take place on the whole net- 
work area. 

Different services can be associated to the GSM- 
card customer number defined in the SIM-unit (Sub- 
scriber Identity Module). The telecommunication costs 
related to the use of the services can directly be charged 
the customer defined by the card. The card related serv- 
ices are described either in the network to the custom- 
er's service database i.e. the AUP (A-user profile), from 
which the data is searched with the caller's ANI (A- 
number identity) or to the service card containing the 
SIM-unit. 

Due to the authentication taking place in the local 
or the mobile telephone network, the GSM-card is 
adapted for different transactions demanding high data 
security, which require authentication of the user. The 
most important applications are i.a. the banking service 
cards, such as credit and cash cards, insurance cards, 
regular customer cards, hotel cards, passenger traffic 
cards, etc. 

The invention provides a solution to the reliable uti- 
lization of the local authentication of the user of the 
GSM- or mobile telephone system of the Global System 
for Mobile Communications i.e. GSM type standardised 
by the European telecommunications organisation 
called ETSI, reference is made to the corresp. ETSI 
specification GSM 01 .05 and the corresponding techni- 
cal reports ref. 01.05 for GSM, where the references to 
other specifications both definitions and abbreviations 
like SIM (Subscriber Identity Module), PIN (Personal 
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Identity Number)-code, IMSI (International Mobile Sub- 
scriber Identity), ANI orA-ID(A-Number Identity) relating 
to the GSM-system are declared. In the following the 
definitions and abbreviations are correspondingly used, 
however, notable is that also e.g. mobile telecommuni- s 
cation networks such as the European DCS (Digital Cel- 
lular telecommunications System) for 1800 MHz based 
on the GSM-specifications, DECT (Digital European 
Cordless Telecommunications) developed and stand- 
ardised by the ETSI as well as the American PCS-net- 10 
works among other cellular phone networks where card- 
controlled mobile terminals are used, are suitable tech- 
nical platforms for the present invention. 

The invention provides a solution to the safe man- 
agement of different services associated with the same *5 
service card and/or A-number identity. 

By the network is meant a combination of transmis- 
sion routes and nodes between two or several users of 
the tele-ordata communication connections. 

The invention is presented below more in detail with 20 
reference to the enclosed drawing. 

Fig. 1 presents the present system for paying bills; 

Fig. 2 presents a simple system of the subject inven- 
tion; 25 

Fig. 3 presents the system between the data termi- 
nal equipment and the central computer sys- 
tem. 

Fig. 1 presents a known system for paying bills or 30 
inquiring account information by phone. No A-number 
identity authentication takes place. The telephone con- 
nection goes via the public telephone network 1 7, which 
does not enable a reliable A-number identity authenti- 
cation in the application. The PI N-code application 1 8 is 35 
required to secure the customer identification in the ap- 
plication. The phone can in principle be used by anyone. 
The A- number identity cannot reliably be used in appli- 
cations demanding high data security to identify the us- 
er, e.g. payments, if the connection is permitted without 40 
the use of the PI N-code of the service card 2, as in such 
a case anyone could unlawfully use the service. The ap- 
plication 18 must be installed to ask for the user code 
and the password. 

Fig. 2 presents a mobile telephone system accord- *s 
ing to the invention, in which the audio- and/or data con- 
nection is taken from the terminal equipment 1 to the 
network 13 of the desired service provider. The service 
card's SIM-unit has been initialized always to demand 
e.g. a four-number PIN-code before setting up the con- so 
nection. In applications demanding high data security 
the connection from the mobile telephone exchange 4 
to the application is coupled via the dedicated network 
6 and to the application is communicated the caller's A- 
number identity used to administrate the user's rights 55 
and to connect the user to the service. With the intelli- 
gence part of the service card 2 installed in the terminal 
equipment of the system, the user of the equipment is 



locally authenticated in point 5, connection is taken via 
the dedicated network 6 to the service provider 13, with 
the help of the identifier the service provider identifies 
the rights of the service user to use the services. 

The system comprises a terminal equipment 1, 
which is in connection via the telephone network with 
the service provider's central computer containing the 
payment system. The object of the invention is a pay- 
ment system, comprising a mobile telephone network's 
terminal equipment 1, to which can be connected the 
subscriber identification unit 2 containing data for sub- 
scriber identification and radio traffic secrecy, and which 
is readable to the terminal equipment for the use of card 
operated mobile stations, e.g. a SIM-card in a GSM-sys- 
tem. The mobile stations 1 are in connection with the 
mobile network transmitter-receiver station i.e. base 
station 3. The base station controller 16 controls the op- 
erations of one or several base stations 3. From the con- 
troller or the base station there are connections with the 
mobile telephone exchange 4, from where there are 
connections to the telecommunication networks 6. Ac- 
cording to the invention, calls to a predetermined 
number are directed to the dedicated network 6 in the 
mobile telephone exchange. In the call set-up, the sub- 
scriber is identified in the authentication center 5 and 
the subscriber is given the right to the call. The authen- 
tication center contains in La. the GSM-system the mo- 
bile subscribers' secret identification keys and this is uti- 
lized i.a. in securing the data protection to prevent mis- 
use of the mobile subscriptions and to maintain the radio 
traffic secrecy. The network can be a public telephone 
network, as is well known, but according to the invention 
in applications demanding high data security, a dedicat- 
ed network 6. Information about e.g. the amount to be 
paid as well as data required to identify the A- and B- 
subschbers are transferred in the phone calls. 

To build up the connections, the system presented 
in Fig. 3 comprises the service connecting point 7, to 
which has been linked a service control point 8, contain- 
ing the data about the services available to the subscrib- 
er. The control and management devices are essential 
for the access to the services of the service provider, e. 
g. in audio-applications a person-aided 9a, e.g. a call- 
management program intended for operator use in a 
CallCoordinator 2 operating in local area network PC- 
or minicomputer environment, or an automatic tele- 
phone service system 9b, e.g. a Periphonics VPS or IBM 
Direct Talk/6000 or some other micro- or minicomputer 
intended for voice processing, and in data applications 
a telematic service system 9c, with connections via the 
service connection point 7 to the services of the service 
provider. 

In the voice-applications the telephone service sys- 
tem comprises a PABX 10, e.g. Meridian, an data adapt- 
er 1 1 linked to the PABX, e.g. Meridian Link for switching 
of the A- and B-numbers to the talk- and data session, 
an automatic talk control system 12, e.g. Meridian ACD, 
a possible PABX network 1 3, e.g. Meridian, a host com- 
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puter 14, e.g. host-machine IBM or Tandem, a service 
application to be run in the host computer 15. 

The data terminal equipment can be at e.g. the store 
pay-desk, where the customers puts his own pay (serv- 
ice) card in the terminal, i.e. the GSM-telephone's card $ 
reading device. In the method the charging of the trans- 
actions of the card holder is based on the SIM-card and 
the GSM-network standard, according to which the SIM- 
card in the GSM-terminal card reader reserves the 
equipment based on the SIM-card user data. The GSM- 10 
terminal is visible to the network-operator as a personal 
transaction of the card holder. The payer enters his card 
identification number into the terminal. After having ap- 
proved the identification number given by the payer, the 
GSM-network terminal is switched to the GSM-network, is 
if permitted by the system. The payer selects the trans- 
mitter of the transaction, e.g. a bank, a credit company, 
based on which a call is placed to the transmitter's pay- 
ment system. When the connection is set up via the ded- 
icated network 6, the system of the transmitter's pay- 20 
ment system asks for the amount to be paid and re- 
quests the payer to confirm the amount. After having ap- 
proved the transaction, the payment system returns the 
identification number. The payment terminal utilizing the 
GSM-network produces a receipt to the customer for the 2s 
transaction and records the transaction in the cash reg- 
ister. 

In the system the same call gets in connection with 
the payment system of the payee for a simultaneous se- 
curing of the usability of the card, and with the network 30 
operator to charge for the use of the phone. 

The system also enables the offering of free serv- 
ices via the network, because the payer of every trans- 
action in the GSM-connection can be defined so that the 
payee or another party is charged if utilizing in the GSM- 35 
network the payees free service number, a collect call 
or alike. 

Generally a computer system is built around the 
GSM-terminal, which system contains the local data- 
base, the storage and the programming intelligence pro- *o 
viding the peripheral devices required for the invoicing 
and cash registering. The identification of the card issu- 
er i.e. the service provider, e.g. the store, bank, etc. can 
be made in the SIM-card blank. The SIM-card can, if 
required, be furnished with a magnetic stripe and card 
embossing. The SIM-card or a corresponding micro- 
chip can be programmed and altered so that when 
putting the card into the data terminal equipment it au- 
tomatically calls the transaction processing system of 
the service provider, e.g. the central payment transmis- so 
sion system. 

Due to the high data security demands in banking 
and payment applications, the banking and payment ap- 
plication connections taken from the GSM-network are 
connected from the mobile telephone exchange MSC 4 55 
to the dedicated network 6. The dedicated network 6 
consists e.g. of N*2Mbps connections. The use of the 
dedicated network 6 aims at preventing unlawful use of 



the services, which at present is possible when using 
the public telephone network. 

In the banking services, the bank customer places 
the bank service card containing the SIM-unit in the 
GSM-network terminal. In telephone based banking 
services the terminal can be a standard GSM-tele- 
phone. In databased banking services the terminal can 
be a microcomputer and a banking service program 
linked to the GSM-telephone. Thus a sufficient storage 
and programming intelligence for the data processing 
and transmission is contained in the data terminal itself 
or linked to it, as is well known. To the terminal, e.g. Mo- 
torola MicroTac -phone serial port can be linked a micro- 
computer (data processing device) and/or a display, 
keyboard and means to control these. 

The banking services are handled by calling the 
bank related service numbers, the B-n umber, based on 
which is searched from the service database linked to 
the customer's A-number i.e. the customer's service 
profile (AUP= A user profile) the customer's account 
number/(s) and information about available banking 
services. From the accounts linked to the customer's. 
AUP, means can be transferred to other accounts, bills 
can be paid, or bills contained in the bill basket linked 
to the AUP can be approved or rejected. The bill basket 
is a system to which the invoicing parties deliver their 
invoicing material, from which the payers can approve 
or reject payments addressed to them. 

In the banking service application the customer 
feeds his card into a device contained in the GSM-net- 
work terminal. The customer enters his PIN-code. The 
GSM-network terminal makes a local PIN-code check- 
ing according to the GSM-standard. If the PIN-code is 
correct, the customer can get in connection with the 
bank. In case the PIN-code is incorrect, the customer 
can try again a limited amount of times according to the 
GSM-network's SIM-standard. The SIM-unit has been 
initialized for banking and payment applications in a 
state that always demands the PIN-code. When the 
amount of consecutive faulty entries permitted by the 
PIN-code is exceeded, the card is locked and its re- 
opening requires a so called PUG-code which is longer 
than the PIN-code. When the entry is correct, the cus- 
tomer selects the banking service number. Based on the 
customer's A-number the services available to the cus- 
tomer are searched from the customer's database. The 
customer attends to his banking affairs by phone or by 
the home computer and thereafter cuts off the connec- 
tion. 

When paying by pay card, the payer's card is fed 
into the payment data terminal and the shopkeeper 
(cashier) enters the code of the payment transmitter se- 
lected by the payer (bank, credit company, etc.) and the 
amount to be paid. The payer enters his PIN-code. As 
described above, checking is done, whereafter based 
on the customer's A-number the account (bank account, 
credit account, or alike) to be charged is searched from 
the data base maintained by the teleoperator or the pay- 
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ment transmitter. After having approved the transaction, 
the payment system sends to the seller a consecutive 
approval number for the registration of the transaction 
and for the producing of the receipt. 

The approved transaction is credited to shopkeep- 
er's account with the amount paid. In case there is not 
a sufficient cover in the account or if the transaction for 
some other reason cannot be approved, the payment 
system sends a rejection message. 

The payment data terminal contains i.a. a display, 
a keyboard, a receipt printer, a possible link to the cash- 
ier system, a reader etc. as well as the above mentioned 
SIM-card reader and the GSM-network terminal equip- 
ment. 

The Mega Service Center operates as the service 
card system maintenance center, in which different 
service providers' services related to the service cards 
and/or A-number identity are administrated, and in 
which the customers with the help of their A-number 
identity can change their service profiles (AUP) and eas- 
ily and safely handle different transactions. The Mega 
Service Center is a person aided 9a or an automatic tel- 
ephone 9b or a telematic 9c system (computer support- 
ed data service system), from which the customer's tel- 
ecommunication connection is transmitted to the serv- 
ices available to the customer. 

The invention has above been described with ref- 
erence to one of its favorable forms of application. The 
invention is not to be considered as so limited, but all 
modifications within the scope of the inventive idea de- 
fined by the claims are naturally applicable. 

Claims 

1 . A method for using telecommunication services and 
carrying out financial transactions by a mobile tele- 
phone system including at least one mobile tele- 
phone exchange for coupling connections in, from 
and to the mobile telephone system, in which meth- 
od an audio and/or data connection is taken from a 
data terminal equipment (1 ) of the mobile telephone 
system to a desired service provider (13), and in 
which method preceding the connection to the serv- 
ice provider a user of the system is authenticated in 
an authentication center (5) of the mobile telephone 
system by means of a personal identity code and 
data from an intelligence part of a service card (2) 
contained in the system's terminal equipment, 
characterised in, that after the user is locally au- 
thenticated to verify his rights to use the service of 
the desired service provider (13) the connection is 
established from the mobile telephone exchange 
via a dedicated network (6) to the service provider. 

2. A method according to the claim 1 , characterised 
in, that as the mobile telephone system is used a 
Global System for Mobile Communications, abbr. 



GSM, type mobile telephone system or a corre- 
sponding system with service card controlled mo- 
bile terminals, and that the service card contains a 
Subscriber Identity Module, abbr. SIM, unit for the 
$ GSM network, which has in authentication applica- 
tions been initialised to demand an entering of the 
user's identification by a Personal Identity Number, 
abbr. PIN, of the service card. 

10 3. A method according to the claim 1 or 2. character- 
ised in, that in banking, payment and other applica- 
tions requiring high data security, the audio or data 
connections taken in the GSM network are trans- 
mitted from the mobile telephone exchange (4) to 

'5 the dedicated network (6) to prevent misuse. 

4. A method according to any of the above claims, 
characterised in, that in the said the connections 
established from the mobile telephone exchange 

20 (4) via the dedicated network (6) to the service (1 3) 
that after the said local user authentication the us- 
er's A-number, i.e. Subscription number of the call- 
ing subscription, identity is utilised to check the us- 
er's rights to use the service. 

2$ 

5. A method according to any of the above claims, 
characterised in, that in the mobile telephone ex- 
change a call to a predetermined number is trans- 
mitted to the dedicated network (6) according to the 

30 register contained in the mobile telephone ex- 
change. 

6. A method according to any of the above claims, 
characterised in, that from a private network there 

35 is provided a connection via a service switching 
point and a service control point to several of the 
user services, which are registered e.g. in a service 
database administrated by an operator to transmit 
the user to the desired services. 

40 

7. A method to pay by a terminal equipment of a mo- 
bile telephone exchange of a mobile telephone net- 
work, the said terminal equipment having a tele- 
phone/pay card linked to it enabling user's calls, 

45 connections to the mobile telephone network are 
provided, via which there is an access to a service 
provider's services, characterised in reserving the 
equipment based on user data contained in a (Sub- 
scriber Identity Module, abbr. SIM, card by putting 

so the SIM card in the Global System for Mobile Com- 
munications, abbr. GSM, terminal equipment's card 
reader, entering a card identification number into 
terminal equipment, connecting the terminal equip- 
ment to the GSM network after having approved the 

55 identification number given by the user, selecting a 
transaction transmitter, the service provider, calling 
a transmitter's, such as a mobile telephone network 
operator, payment system, forming a connection 
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with the transmitter's payment system, giving an 
amount to be paid, confirming the amount, approv- 
ing a payment, giving the payment an identification 
number, producing a receipt of the transaction to the 
user, recording the transaction in the service pro- 5 
vider's, such as a seller, terminal and in the payment 
system, charging telephone connection time, and 
cutting off connection. 

8. A method according to the claim 7, characterised 10 
in checking the card user's right of use in the service 
provider's terminal, such as a computer, and check- 
ing in affirmative case the amount to be paid by the 
card, and if appropriate acknowledging the receipt 

of the payment. '5 

9. A method according to the claim 7 or 8, character- 
ised in that an A-number, i.e. an subscription 
number of the calling subscription, identity corre- 
sponds to an account number. 20 



Patentanspruche 

1. Verfahren zum Benutzen von Fernmeldediensten 25 
und zum Durchfuhren finanzieller Transaktionen 
uber ein Mobiltelefonsystem, welches mindestens 
eine Mobiltelefon-Vermittlungsstelle aufweist, um 
Verbindungen innerhalb, von und zu dem Mobilte- 
lefonsystem zu schalten, bei welchem Verfahren ei- 30 
ne Audio- und/oder Datenverbindung von einer Da- 
tenendeinrichtung (1) des Mobiltelefonsystems zu 
einem gewunschten Diensteanbieter (13) herge- 
nommen wird, und bei welchem Verfahren vor der 
Verbindung zu dem Diensteanbieter ein Benutzer 3S 
des Systems in einem Autorisierungszentrum (5) 
des Mobiltelefonsystems mrttels eines personli- 
chen tdentitatscodes sowie Daten von einem intel- 
ligenten Teil einer Dienstkarte (2), die in der Sy- 
stem-Endeinrichtung enthalten ist, autorisiert wird, *o 
dadurch gekennzeichnet, daft, nachdem der Be- 
nutzer lokal autorisiert ist, um sein Recht auf die Be- 
nutzungdes Dienstesdes gewunschten Dienstean- 
bieters (13) zu verifizieren, die Verbindung von der 
Mobiltelefon-Vermittlungsstelle uber ein eigenstan- 
diges Netzwerk (6) zu dem Diensteanbieter einge- 
richtet wird. 

2. Verfahren nach Anspruch 1 , 

dadurch gekennzeichnet, da(3 als Mobiltelefonsy- so 
stem ein Mobiltelefonsystem vom Typ des globalen 
Mobilkommunikationssystems, abgekurzt GSM, 
Oder ein entsprechendes System mit uber Dienst- 
karte gesteuerten mobilen Endeinrtchtungen ver- 
wendet wird, und daB die Dienstkarte ein Teilneh- ss 
mer-Kennungsmodul, abgekurzt SIM-Einheit, fur 
das GSM-Netzwerk enthalt, welches bei Autorisie- 
rungsvorgangen zur Aufforderung zu einer Eingabe 



der Benutzeridentifikation mittels einer personli- 
chen Identifizierungsnummer (abgekurzt PIN) der 
Dienstkarte initialisiert worden ist. 

3. Verfahren nach Anspruch 1 oder 2, 

dadurch gekennzeichnet, daB bei Bank-, Zah- 
lungs- und anderen Geschaften, die eine hohe Da- 
tensicherheit erfordern, die Audiooder Datenver- 
bindungen, die in dem GSM-Netzwerk hergenom- 
men werden, zur Vermeidung von MiBbrauch von 
der Mobiltelefon-Venmittlungsstetle (4) an das ei- 
genstandige Netzwerk (6) ubertragen werden. 

4. Verfahren nach einem der obigen Anspruche, 
dadurch gekennzeichnet, daB nach dem Einrich- 
ten der Verbindungen von der Mobiftelefon-Vermitt- 
lungsstelle (4) uber das eigenstandige Netzwerk (6) 
zu dem Diensteanbieter (13), nach der lokalen Au- 
torisierung des Benutzers die A-Zahl, d.i. die Teil- 
nehmernummer des rufenden Teilnehmers, dazu 
benutzt wird, die Rechte des Benutzers auf Inan- 
spruchnahme des Dienstes zu uberprufen. 

5. Verfahren nach einem der obigen Anspruche, 
dadurch gekennzeichnet, daB in der Mobiltelefon- 
Vermittlungsstelle ein Ruf zu einer vorbestimmten 
Nummer nach MaBgabe des in der Mobiftelefon- 
Vermittlungsstelte enthaitenen Registers zu dem ei- 
genstandigen Netzwerk (6) ubertragen wird. 

6. Verfahren nach einem der obigen Anspruche, 
dadurch gekennzeichnet, daB von einem privaten 
Netzwerk eine Verbindung uber einen Dienst- 
Schaltpunkt und einen Dienst-Steuerpunkt eine 
Verbindung zu mehreren Benutzerdiensten vorge- 
sehen ist, die zum Beispiei in einer Dienst-Daten- 
bank registriert sind, welche von einem Operator 
betrieben wird, um den Benutzer mit den ge- 
wunschten Diensten zu verbinden. 

7. Verfahren zum Zahlen mit Hilfe einer Endeinrich- 
tung einer Mobiltelefon-Vermittlungsstelle eines 
Mobiltelefonnetzwerks, wobei mit der Endeinrich- 
tung eine Telefon-/Zahl-Karte zum Ermoglichen von 
Benutzeranrufen gekoppelt ist, wobei Verbindun- 
gen zu dem Mobiltelefonnetzwerk vorhanden sind, 
uber die ein Zugriff zu den Diensten eines Dienste- 
anbieters moglich ist, 

dadurch gekennzeichnet, daB die Einrichtung ba- 
sierend auf Benutzerdaten reserviert wird, welche 
in einer Teilnehmer-Kennungsmodul-, abgekurzt 
SIM-Karte enthaiten sind, wobei die SIM-Karte in 
einen Kartenleser der Endeinrtchtungdes globalen 
Mobilkommunikationssystems, abgekurzt GSM, 
eingef uhrt wird, daB eine Kartenidentifikationsnum- 
mer in die Endeinrichtung eingegeben wird, daB die 
Endeinrichtung mit dem GSM-Netzwerk verbunden 
wird, nachdem die von dem Benutzer angegebene 
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Identifikationsnummer zugelassen wurde, daB ein 
Transaktions-Ubertrager, der Diensteanbieter aus- 
gewahlt wind, daB ein Zahlungssystem des Ubertra- 
gers, beispielsweise eines Mobiltelefonnetzwerk- 
Operators, angerufen wird, daB eine Verbindung s 
mit dem Zahlungssystem des Ubertragers herge- 
stellt wird, daB ein zu zah lender Betrag angegeben 
wird, daB der Betrag bestatigt wird, daB eine Zah- 
lung zugelassen wird, daB der Zah lung eine Identi- 
fikattonsnummer zugeteilt wird, daB fur den Benut- 10 
zer eine Quittung uber die Transaktion erstellt wird, 
daB die Transaktion in dem Endgerat des Dienste- 
anbieters, beispielsweise eines Verkaufsgeschafts, 
und in dem Zahlungssystem aufgezeichnet wird, 
daB die GebOhr fur die Telefonverbindungszeit fest- is 
gehalten wird, und daB die Verbindung getrennt 
wird. 

8. Verfahren nach Anspruch 7, 

dadurch gekennzeichnet, daB das Recht des Kar- 20 
tenbenutzers zur Benutzung in der Endeinrichtung 
des Diensteanbieters, beispielsweise in einem 
Rechner, gepruft wird, und daB bei positivem Pru- 
fungsergebnis der von der Karte zu zahlende Be- 
trag gepruft wird, und gegebenenfalls der Erhalt der 25 
Zahlung bestatigt wird. 

9. Verfahren nach Anspruch 7 Oder 8, 

dadurch gekennzeichnet, daB eine A-Nummer, d. 
i. eine Teilnehmernurnmer eines anrufenden Teil- 30 
nehmers, einer Kontonummer entspricht. 

Revendications 

35 

1. Precede pour utiliser des services de telecommu- 
nication et executer des transactions financieres au 
moyen d'un systeme de telephone mobile incluant 
au moins un central telephonique mobile pour le 
couplage de connexion dans, en provenance et en *o 
direction du systeme de telephone mobile, precede 
selon lequel une connexion audio et/ou une con- 
nexion de donnees est etablie depuis un equtpe- 
ment terminal (1) de donnees du systeme de tele- 
phone mobile en direction d'un prestataire de ser- 
vices desire (1 3), et selon lequel avant la connexion 
au prestataire de services, un utilisateur du syste- 
me est authentifie dans un centre d'authentification 
(5) du systeme de telephone mobile, au moyen d'un 
code d'identite personnelle et de donnees prove- so 
nant d'une partte d'informations d'une carte de ser- 
vice (2) contenue dans I'equipement terminal du 
systeme, caracterise en ce qu'apres t'authentifica- 
tion locale de I'utilisateur en vue de verifier ses 
droits a utiliser le service du prestataire de services 55 
desire (13), la connexion est etablie depuis le cen- 
tral telephonique mobile vers le prestataire de ser- 
vices par rintermediaire d'un reseau specialise (6). 



2. Procede selon la revendication 1 , caracterise" en ce 
qu'on utilise comme systeme de telephone mobile, 
un systeme de telephone mobile du type systeme 
global pour communications mobiles, en abrege 
GSM, ou un systeme correspondant comportant 
des terminaux mobiles commandes par une carte 
de service, et que la carte de service contient une 
unite de module d'identite d'abonne, en abrege 
SIM, pour le reseau GSM, qui, lors duplications 
d'authentification, a ete initialisee pour la demande 
d'une entree de ("identification d'un utilisateur au 
moyen d'un numero d'identification personnelle, en 
abtege PIN, de la carte de service. 

3. Procede selon la revendication 1 ou 2, caracterise 
en ce que lors d'une operation bancaire, d'un paie- 
ment et d'autres applications requerant une grande 
security des donnees, les connexions audio ou les 
connexions de donnees introduites dans le reseau 
GSM sont transmises depuis le central telephoni- 
que mobile (4) au reseau specialise (6) pour empe- 
cher une utilisation frauduleuse. 

4. Procede selon Tune quelconque des revendications 
precedentes, caracterise en ce que dans lesdites 
connexions etablies depuis le central telephonique 
mobile (4) vers le service (1 3) par I'intermediaire du 
reseau specialise (6), apres ladite authentication 
locale de I'utilisateur, I'identite de numero A de I'uti- 
lisateur, e'est-a-dire le numero de I'abonne appe- 
lant, est utilisee pour verifier les droits de I'utilisateur 
a utiliser ce service. 

5. Procede selon I'une quelconque des revendications 
precedentes, caracterise en ce que, dans le central 
telephonique mobile, un appel d'un numero prede- 
termine est transmis au reseau specialise (6) en 
fonction du registre contenu dans le central telepho- 
nique mobile. 

6. Procede selon I'une quelconque des revendications 
precedentes, caracterise en ce qu'une connexion 
est etablie a partir d'un reseau prive, par I'interme- 
diaire d'un point de commutation de service et d'un 
point de contrdle de service, avec une plurality de 
services d'utilisateurs, qui sont enregistres par 
exemple dans une base de donnees de services g6- 
ree par un operateur pour la mise en communica- 
tion de I'utilisateur avec les services desires. 

7. Procede de paiement au moyen d'un equipement 
terminal d'un central telephonique mobile d'un re- 
seau telephonique mobile, ledit Equipement termi- 
nal comportant une carte telephonique/carte de 
paiement qui lui est raccordee et permet des appels 
d'un utilisateur, et des connexions avec le reseau 
telephonique mobile etant prevues, connexions par 
i'intermediaire desquelles il est possible d'acceder 
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a des services d'un prestataire de services, carac- 
terise par la reservation de Pequipement sur la base 
de donnees d'utilisateur contenues dans une carte 
de module d'identit6 d'abonn6, en abr^ge* SIM, par 
insertion de la carte SIM dans le lecteur de cartes s 
de l'6quipement terminal du systeme global pour 
communications mobiles, en abr6ge GSM, Intro- 
duction d'un numero ^identification de carte dans 
I'equipement terminal, le raccordement de Pequipe- 
ment terminal au r£seau GSM apres approbation 10 
du numero d 1 identification donne par I'utilisateur, la 
selection d'un 6metteur de transaction, le prestatai- 
re de services, I'appel du systeme de paiement d'un 
emetteur, tel qu'un operateur du reseau telephoni- 
que mobile, l'6tablissement d'une connexion avec is 
le systeme de paiement de I'Smetteur, I'indication 
d'un montant a payer, la confirmation du montant, 
('approbation d'un paiement, Paffectation d'un nu- 
mero ^identification au paiement, renvoi d'un ac- 
cuse de reception de la transaction a I'utilisateur so 
I'enregistrement de la transaction dans le terminal 
du prestataire de services, par exemple un vendeur, 
et dans le systeme de paiement, le chargement de 
la duree de la liaison t6!6phonique et f'interruption 
de la connexion. 25 

8. Proc6d6 selon la revendication 7, caract6rise par le 
con t role du droit de I'utilisateur de la carte, a utiliser 
le terminal du prestataire de services, tel qu'un or- 
dinate ur, et la verification, dans le cas d'une r6pon- 30 
se affirmative, du montant a payer au moyen de la 
carte et, si cela est approprie, I'accuse de reception 

de la reception du paiement. 

9. Procede selon la revendication 7 ou 8, caracterise 35 
en ce qu'une identity de numero A, c'est-a-dire un 
numero d'abonne appelant, correspond a un nume- 
ro de compte. 
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